Module org.elasticsearch.xcore
Package org.elasticsearch.xpack.core.security.authz.permission
package org.elasticsearch.xpack.core.security.authz.permission
-
ClassDescriptionA permission that is based on privileges for application (non elasticsearch) capabilitiesA permission that is based on privileges for cluster wide actions, with the optional ability to inspect the request objectBase for implementing cluster action based
ClusterPermission.PermissionCheck.Evaluates whether the cluster actions (optionally for a given request) is permitted by this permission.Stores document level permissions in the form queries that match all the accessible documents.
The document level permissions may be limited by another set of queries in that case the limited queries are used as an additional filter.Stores patterns to fields which access is granted or denied to and maintains an automaton that can be used to check if permission is allowed for a specific field.A service for managing the caching ofFieldPermissionsas these may often need to be combined or created and internally they use anAutomaton, which can be costly to create once you account for minimizationRepresents the definition of aFieldPermissions.A permission that is based on privileges for index related actions executed on specific indicesThis encapsulates the authorization test for resources.ARolelimited by another role.
The effective permissions returned onLimitedRole.authorize(String, Set, Metadata, FieldPermissionsCache)call would be limited by the provided role.Represents a group of permissions for a remote cluster.Represents the set of permissions for remote clusters.A generic structure to encapsulate resource to privileges map.A generic structure to encapsulate resources toResourcePrivileges.A permissions that is based on a general privilege that contains patterns of users that this user can execute a request as